Overview

overview

3

Static

static

3

16bd3525df...18.exe

windows7-x64

1

16bd3525df...18.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    93s
  • max time network
    95s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    27-06-2024 16:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    16bd3525dfe8bedcfa2456a2d6254f11_JaffaCakes118.exe

  • Size

    10KB

  • MD5

    16bd3525dfe8bedcfa2456a2d6254f11

  • SHA1

    250068b18be5ffd6328be988e0ba35b7d77ccc5a

  • SHA256

    7568500a2b1f17e73f8d90bb1d748975f036037e0acf4a901c7df78d7533edb2

  • SHA512

    572f4c81b0f8308a3d0f389ea267ea5a7b4406390ef524d3468b02914f28ccacb42b3163926fb6c0971e7379ac319322a05cc3b0ffa373cb0038ebeea22ae142

  • SSDEEP

    192:0JGc1Zl2+VAfNxl1THsqhgzgVGjPlRH0L766nQAlKhFo22Xs6Z0:0JGcMJxDTHPBmhuHc6

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\16bd3525dfe8bedcfa2456a2d6254f11_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\16bd3525dfe8bedcfa2456a2d6254f11_JaffaCakes118.exe"
    1⤵
      PID:1260
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 1260 -s 492
        2⤵
        • Program crash
        PID:1416
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 1260 -ip 1260
      1⤵
        PID:4376

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      • memory/1260-0-0x0000000000400000-0x0000000000402800-memory.dmp

        Filesize

        10KB

        Download